SUSE update for ffmpeg
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2023-50010 |
| CWE-ID | CWE-119 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
openSUSE Leap Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 SP4 LTSS Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing LTSS 15 Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing ESPOS 15 Operating systems & Components / Operating system SUSE Linux Enterprise Desktop 15 SP4 LTSS Operating systems & Components / Operating system SUSE Linux Enterprise Micro Operating systems & Components / Operating system SUSE Linux Enterprise Workstation Extension 15 Operating systems & Components / Operating system Desktop Applications Module Operating systems & Components / Operating system SUSE Package Hub 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 Operating systems & Components / Operating system SUSE Linux Enterprise Real Time 15 Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing 15 Operating systems & Components / Operating system SUSE Linux Enterprise Desktop 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 SP3 LTSS Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 SP2 LTSS Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS Operating systems & Components / Operating system SUSE Enterprise Storage Operating systems & Components / Operating system libavfilter6-32bit Operating systems & Components / Operating system package or component libswresample2-32bit-debuginfo Operating systems & Components / Operating system package or component libpostproc54-32bit-debuginfo Operating systems & Components / Operating system package or component libavformat57-32bit-debuginfo Operating systems & Components / Operating system package or component libavcodec57-32bit Operating systems & Components / Operating system package or component libswscale4-32bit Operating systems & Components / Operating system package or component libavformat57-32bit Operating systems & Components / Operating system package or component libavdevice57-32bit-debuginfo Operating systems & Components / Operating system package or component libswscale4-32bit-debuginfo Operating systems & Components / Operating system package or component libpostproc54-32bit Operating systems & Components / Operating system package or component libavutil55-32bit Operating systems & Components / Operating system package or component libavresample3-32bit-debuginfo Operating systems & Components / Operating system package or component libswresample2-32bit Operating systems & Components / Operating system package or component libavcodec57-32bit-debuginfo Operating systems & Components / Operating system package or component libavresample3-32bit Operating systems & Components / Operating system package or component libavutil55-32bit-debuginfo Operating systems & Components / Operating system package or component libavdevice57-32bit Operating systems & Components / Operating system package or component libavfilter6-32bit-debuginfo Operating systems & Components / Operating system package or component libavcodec57-debuginfo Operating systems & Components / Operating system package or component libavformat-devel Operating systems & Components / Operating system package or component libavfilter-devel Operating systems & Components / Operating system package or component libavcodec-devel Operating systems & Components / Operating system package or component libswscale4 Operating systems & Components / Operating system package or component libswresample2 Operating systems & Components / Operating system package or component libavresample3 Operating systems & Components / Operating system package or component ffmpeg Operating systems & Components / Operating system package or component libavfilter6-debuginfo Operating systems & Components / Operating system package or component libswscale4-debuginfo Operating systems & Components / Operating system package or component libswresample2-debuginfo Operating systems & Components / Operating system package or component libavfilter6 Operating systems & Components / Operating system package or component libavutil-devel Operating systems & Components / Operating system package or component libavutil55 Operating systems & Components / Operating system package or component libswscale-devel Operating systems & Components / Operating system package or component libavformat57 Operating systems & Components / Operating system package or component libavdevice-devel Operating systems & Components / Operating system package or component libpostproc54 Operating systems & Components / Operating system package or component libavformat57-debuginfo Operating systems & Components / Operating system package or component libavutil55-debuginfo Operating systems & Components / Operating system package or component libavcodec57 Operating systems & Components / Operating system package or component libpostproc54-debuginfo Operating systems & Components / Operating system package or component ffmpeg-private-devel Operating systems & Components / Operating system package or component ffmpeg-debugsource Operating systems & Components / Operating system package or component libswresample-devel Operating systems & Components / Operating system package or component libavresample-devel Operating systems & Components / Operating system package or component libavdevice57 Operating systems & Components / Operating system package or component libavdevice57-debuginfo Operating systems & Components / Operating system package or component libpostproc-devel Operating systems & Components / Operating system package or component ffmpeg-debuginfo Operating systems & Components / Operating system package or component libavresample3-debuginfo Operating systems & Components / Operating system package or component |
| Vendor | SUSE |
Security Bulletin
This security bulletin contains one high risk vulnerability.
1) Buffer overflow
EUVDB-ID: #VU89317
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2023-50010
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error within the set_encoder_id() function in /fftools/ffmpeg_enc.c A remote attacker can pass specially crafted input to the application, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package ffmpeg to the latest version.
Vulnerable software versionsopenSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise High Performance Computing LTSS 15: SP3 - SP4
SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise Workstation Extension 15: SP5
Desktop Applications Module: 15-SP5
SUSE Package Hub 15: 15-SP5
SUSE Linux Enterprise Server for SAP Applications 15: SP2 - SP5
SUSE Linux Enterprise Server 15: SP2 - SP5
SUSE Linux Enterprise Real Time 15: SP5
SUSE Linux Enterprise High Performance Computing 15: SP2 - SP5
SUSE Linux Enterprise Desktop 15: SP5
SUSE Linux Enterprise Server 15 SP3 LTSS: 15-SP3
SUSE Linux Enterprise Server 15 SP2 LTSS: 15-SP2
SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS: 15-SP2
SUSE Enterprise Storage: 7.1
libavfilter6-32bit: before 3.4.2-150200.11.44.1
libswresample2-32bit-debuginfo: before 3.4.2-150200.11.44.1
libpostproc54-32bit-debuginfo: before 3.4.2-150200.11.44.1
libavformat57-32bit-debuginfo: before 3.4.2-150200.11.44.1
libavcodec57-32bit: before 3.4.2-150200.11.44.1
libswscale4-32bit: before 3.4.2-150200.11.44.1
libavformat57-32bit: before 3.4.2-150200.11.44.1
libavdevice57-32bit-debuginfo: before 3.4.2-150200.11.44.1
libswscale4-32bit-debuginfo: before 3.4.2-150200.11.44.1
libpostproc54-32bit: before 3.4.2-150200.11.44.1
libavutil55-32bit: before 3.4.2-150200.11.44.1
libavresample3-32bit-debuginfo: before 3.4.2-150200.11.44.1
libswresample2-32bit: before 3.4.2-150200.11.44.1
libavcodec57-32bit-debuginfo: before 3.4.2-150200.11.44.1
libavresample3-32bit: before 3.4.2-150200.11.44.1
libavutil55-32bit-debuginfo: before 3.4.2-150200.11.44.1
libavdevice57-32bit: before 3.4.2-150200.11.44.1
libavfilter6-32bit-debuginfo: before 3.4.2-150200.11.44.1
libavcodec57-debuginfo: before 3.4.2-150200.11.44.1
libavformat-devel: before 3.4.2-150200.11.44.1
libavfilter-devel: before 3.4.2-150200.11.44.1
libavcodec-devel: before 3.4.2-150200.11.44.1
libswscale4: before 3.4.2-150200.11.44.1
libswresample2: before 3.4.2-150200.11.44.1
libavresample3: before 3.4.2-150200.11.44.1
ffmpeg: before 3.4.2-150200.11.44.1
libavfilter6-debuginfo: before 3.4.2-150200.11.44.1
libswscale4-debuginfo: before 3.4.2-150200.11.44.1
libswresample2-debuginfo: before 3.4.2-150200.11.44.1
libavfilter6: before 3.4.2-150200.11.44.1
libavutil-devel: before 3.4.2-150200.11.44.1
libavutil55: before 3.4.2-150200.11.44.1
libswscale-devel: before 3.4.2-150200.11.44.1
libavformat57: before 3.4.2-150200.11.44.1
libavdevice-devel: before 3.4.2-150200.11.44.1
libpostproc54: before 3.4.2-150200.11.44.1
libavformat57-debuginfo: before 3.4.2-150200.11.44.1
libavutil55-debuginfo: before 3.4.2-150200.11.44.1
libavcodec57: before 3.4.2-150200.11.44.1
libpostproc54-debuginfo: before 3.4.2-150200.11.44.1
ffmpeg-private-devel: before 3.4.2-150200.11.44.1
ffmpeg-debugsource: before 3.4.2-150200.11.44.1
libswresample-devel: before 3.4.2-150200.11.44.1
libavresample-devel: before 3.4.2-150200.11.44.1
libavdevice57: before 3.4.2-150200.11.44.1
libavdevice57-debuginfo: before 3.4.2-150200.11.44.1
libpostproc-devel: before 3.4.2-150200.11.44.1
ffmpeg-debuginfo: before 3.4.2-150200.11.44.1
libavresample3-debuginfo: before 3.4.2-150200.11.44.1
CPE2.3- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp4_ltss:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:desktop_applications_module:15-SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP2:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP2:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP2:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp3_ltss:15-SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp2_ltss:15-SP2:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15_sp2_ltss:15-SP2:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_enterprise_storage:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:suse:libavfilter6-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-private-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-debuginfo:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2024/suse-su-20241593-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
